标签:2017版源代码编辑 |
|||
| 第1行: | 第1行: | ||
== Install == | == Install == | ||
<syntaxhighlight lang="bash"> | <syntaxhighlight lang="bash"> | ||
docker run --name example-keycloak \ | docker run --name example-keycloak \ | ||
-p 8081:8080 -d \ | -p 8081:8080 -d \ | ||
-e KC_BOOTSTRAP_ADMIN_USERNAME=admin \ | -e KC_BOOTSTRAP_ADMIN_USERNAME=admin \ | ||
-e KC_BOOTSTRAP_ADMIN_PASSWORD=<change it> \ | -e KC_BOOTSTRAP_ADMIN_PASSWORD=<change it> \ | ||
quay.io/keycloak/keycloak:26. | quay.io/keycloak/keycloak:26.3.2 start-dev \ | ||
--hostname=https://oauth.example.com | --hostname=https://oauth.example.com | ||
</syntaxhighlight> | </syntaxhighlight> | ||
2025年8月6日 (三) 01:22的版本
Install
docker run --name example-keycloak \
-p 8081:8080 -d \
-e KC_BOOTSTRAP_ADMIN_USERNAME=admin \
-e KC_BOOTSTRAP_ADMIN_PASSWORD=<change it> \
quay.io/keycloak/keycloak:26.3.2 start-dev \
--hostname=https://oauth.example.com
server {
server_name oauth.example.com;
location / {
root html;
index index.html index.htm;
proxy_pass http://localhost:8081;
proxy_redirect off;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Port 443;
}
...
}Configure
- Create realm: my-org
- Create users: whatever
- Create client: my-app
- Client ID: my-app
- Valid redirect URIs: http://localhost:5173/auth/callback
- Valid post logout redirect URIs : http://localhost:5173
- Web origins: http://localhost:5173 (No slash at end!!!)
- Client authentication: off (for public clients)
- Authentication flow: Standard flow, Direct access grants